Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/2bzgTXhAXZddm3HAMYIwrpLdzyA.roa
File: 2bzgTXhAXZddm3HAMYIwrpLdzyA.roa (raw, json)
Hash identifier: /m8+yCxsm6KQpZpbnsWoXx9hMnNVX6lJm5+SJcH2NIY=
Subject key identifier: D9:BC:E0:4D:78:40:5D:97:5D:9B:71:C0:31:82:30:AE:92:DD:CF:20
Certificate issuer: /CN=07734d8db5b6b71a82c901ebdf4e0cec4299e956
Certificate serial: 019426D97ADB11D05C924C769CF89CFDA986
Authority key identifier: 07:73:4D:8D:B5:B6:B7:1A:82:C9:01:EB:DF:4E:0C:EC:42:99:E9:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B3NNjbW2txqCyQHr304M7EKZ6VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/2bzgTXhAXZddm3HAMYIwrpLdzyA.roa
Signing time: Thu 02 Jan 2025 11:49:34 +0000
ROA not before: Thu 02 Jan 2025 11:49:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48551
IP address blocks: 185.228.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:7a:db:11:d0:5c:92:4c:76:9c:f8:9c:fd:a9:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07734d8db5b6b71a82c901ebdf4e0cec4299e956
Validity
Not Before: Jan 2 11:49:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d9bce04d78405d975d9b71c0318230ae92ddcf20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:91:c9:7f:ef:26:36:02:9b:6f:50:56:1e:6e:
e6:5f:50:c1:1e:f1:ca:f5:2c:92:ed:89:4d:ba:25:
47:81:67:74:06:16:ff:54:2c:0f:14:76:03:d6:04:
5b:0c:09:47:7a:47:f9:f8:4a:da:09:b4:6a:98:ef:
8f:b8:57:b8:62:f0:50:05:25:81:43:6c:8c:c8:b4:
14:cc:c2:27:54:09:54:f0:f6:22:4d:ed:2e:13:d2:
69:dc:c5:20:91:b2:20:00:09:49:ac:a9:e5:4b:26:
f0:c9:78:71:be:fc:6c:57:30:dc:9a:81:cf:6a:29:
f8:05:62:a9:7a:66:fb:fd:74:63:4a:32:59:16:c5:
fc:48:5f:80:09:b4:18:57:e5:f2:1c:51:07:27:fc:
87:9b:e6:91:7e:38:5a:ae:dd:4d:9a:a9:da:c9:0a:
1a:89:f8:65:7d:6a:21:af:04:48:ed:fe:a5:bb:9a:
bd:49:e0:da:c1:30:3e:51:3a:16:8b:57:ae:72:5b:
e6:09:96:e6:af:b0:e1:55:7b:88:bb:65:5e:c9:00:
61:cb:bb:72:66:08:c8:4c:f7:b6:63:58:f8:dc:b3:
81:ad:0a:fa:31:95:89:41:14:7f:c3:f0:a5:b3:1c:
4a:b1:8f:1a:03:68:2b:b5:1c:81:ab:8d:f7:25:96:
e8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BC:E0:4D:78:40:5D:97:5D:9B:71:C0:31:82:30:AE:92:DD:CF:20
X509v3 Authority Key Identifier:
keyid:07:73:4D:8D:B5:B6:B7:1A:82:C9:01:EB:DF:4E:0C:EC:42:99:E9:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B3NNjbW2txqCyQHr304M7EKZ6VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/2bzgTXhAXZddm3HAMYIwrpLdzyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b0845c-cd18-40f8-a1c7-09562914cf40/1/B3NNjbW2txqCyQHr304M7EKZ6VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.58.0/24
Signature Algorithm: sha256WithRSAEncryption
49:8c:31:fa:06:e5:36:1d:a1:7d:6c:df:67:2e:66:3d:01:9b:
aa:e6:cf:a4:4c:f7:db:2b:ac:02:2f:12:24:ff:b7:2f:ab:4b:
07:2e:0d:8f:ca:94:4d:59:fa:6a:f9:3a:23:fa:80:db:65:65:
bd:f0:38:ab:c3:59:3a:2a:7c:0e:28:73:0c:78:5e:5f:fe:ea:
65:2d:1f:ef:c2:b5:1d:ee:87:0d:08:77:15:08:8a:f6:be:ce:
a9:f7:4a:dd:fc:25:f1:af:ba:ac:47:a0:ba:0d:b1:c7:17:99:
c5:f0:c4:27:f0:ea:36:17:2d:f0:d5:97:6d:76:44:36:47:9a:
67:d7:08:82:5b:5d:62:29:2b:1b:38:12:3a:94:90:1e:55:35:
8c:d0:20:e8:d1:fd:8c:f9:a4:10:a8:9b:4e:f3:98:09:6f:b8:
98:a3:a7:e1:7f:62:9c:9d:f7:6b:6b:e3:3d:30:63:f7:00:f8:
d7:fd:ef:6f:df:0b:37:a6:25:9b:45:6f:96:08:78:a8:09:25:
e2:1b:ea:97:a0:fb:9f:8e:1d:7a:bf:fc:76:f5:7f:c5:cf:5c:
34:44:62:a2:76:82:e2:38:4d:91:96:c3:a5:78:90:a1:f2:45:
d2:23:d8:38:1d:07:3c:d4:47:ef:53:76:70:83:1f:1d:59:29:
5c:95:e4:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 01:33:07 2025 by rpki-client